rpm package
opensuse/live555&distro=openSUSE Leap 15.2
pkg:rpm/opensuse/live555&distro=openSUSE%20Leap%2015.2
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-28899 | — | < 2021.05.22-lp152.3.6.1 | 2021.05.22-lp152.3.6.1 | Apr 29, 2021 | Vulnerability in the AC3AudioFileServerMediaSubsession, ADTSAudioFileServerMediaSubsession, and AMRAudioFileServerMediaSubsessionLive OnDemandServerMediaSubsession subclasses in Networks LIVE555 Streaming Media before 2021.3.16. | ||
| CVE-2019-15232 | — | < 2021.05.22-lp152.3.6.1 | 2021.05.22-lp152.3.6.1 | Aug 19, 2019 | Live555 before 2019.08.16 has a Use-After-Free because GenericMediaServer::createNewClientSessionWithId can generate the same client session ID in succession, which is mishandled by the MPEG1or2 and Matroska file demultiplexors. | ||
| CVE-2019-9215 | — | < 2019.06.28-lp152.3.3.1 | 2019.06.28-lp152.3.3.1 | Feb 28, 2019 | In Live555 before 2019.02.27, malformed headers lead to invalid memory access in the parseAuthorizationHeader function. | ||
| CVE-2019-7314 | — | < 2019.06.28-lp152.3.3.1 | 2019.06.28-lp152.3.3.1 | Feb 4, 2019 | liblivemedia in Live555 before 2019.02.03 mishandles the termination of an RTSP stream after RTP/RTCP-over-RTSP has been set up, which could lead to a Use-After-Free error that causes the RTSP server to crash (Segmentation fault) or possibly have unspecified other impact. |
- CVE-2021-28899Apr 29, 2021affected < 2021.05.22-lp152.3.6.1fixed 2021.05.22-lp152.3.6.1
Vulnerability in the AC3AudioFileServerMediaSubsession, ADTSAudioFileServerMediaSubsession, and AMRAudioFileServerMediaSubsessionLive OnDemandServerMediaSubsession subclasses in Networks LIVE555 Streaming Media before 2021.3.16.
- CVE-2019-15232Aug 19, 2019affected < 2021.05.22-lp152.3.6.1fixed 2021.05.22-lp152.3.6.1
Live555 before 2019.08.16 has a Use-After-Free because GenericMediaServer::createNewClientSessionWithId can generate the same client session ID in succession, which is mishandled by the MPEG1or2 and Matroska file demultiplexors.
- CVE-2019-9215Feb 28, 2019affected < 2019.06.28-lp152.3.3.1fixed 2019.06.28-lp152.3.3.1
In Live555 before 2019.02.27, malformed headers lead to invalid memory access in the parseAuthorizationHeader function.
- CVE-2019-7314Feb 4, 2019affected < 2019.06.28-lp152.3.3.1fixed 2019.06.28-lp152.3.3.1
liblivemedia in Live555 before 2019.02.03 mishandles the termination of an RTSP stream after RTP/RTCP-over-RTSP has been set up, which could lead to a Use-After-Free error that causes the RTSP server to crash (Segmentation fault) or possibly have unspecified other impact.